It'll likely be a one-time authorization when you're setting up your watch. Then- when it's within range, it'll work still. Essentially- theyd have to steal your fingers, your watch, and your phone. If that happens- you have more to worry about than credit card fraud :)